CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-02-25 19:04:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,101 Commits 1 Branch 0 Tags
02cf845660668c249679ec82807b033846f6ebd3
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE

README.md

Recently updated Proof-of-Concepts

2025

Latest 20 of 202 Repositories

Stars Updated Name Description
493 21 days ago CVE-2018-20250 exp for https://research.checkpoint.com/extracting-code-execution-from-winrar
409 9 hours ago CVE-2025-32463_chwoot Escalation of Privilege to the root through sudo binary with chroot option. CVE-2025-32463
273 6 days ago CVE-2025-53770-Exploit SharePoint WebPart Injection Exploit Tool
331 1 day ago CVE-2025-24071_PoC CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
189 3 days ago CVE-2025-32023 PoC & Exploit for CVE-2025-32023 / PlaidCTF 2025 "Zerodeo"
159 11 hours ago POC-CVE-2025-24813 his repository contains an automated Proof of Concept (PoC) script for exploiting CVE-2025-24813, a Remote Code Execution (RCE) vulnerability in Apache Tomcat. The vulnerability allows an attacker to upload a malicious serialized payload to the server, leading to arbitrary code execution via deserialization when specific conditions are met.
192 1 day ago CVE-2025-30208-EXP CVE-2025-30208-EXP
147 15 days ago CVE-2025-21756 Exploit for CVE-2025-21756 for Linux kernel 6.6.75. My first linux kernel exploit!
150 4 days ago CVE-2025-26125 (0day) Local Privilege Escalation in IObit Malware Fighter
126 5 days ago CVE-2025-32433 CVE-2025-32433 https://github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2
167 1 day ago CVE-2025-32463 Local Privilege Escalation to Root via Sudo chroot in Linux
85 3 hours ago CVE-2025-32756-POC Proof of Concept for CVE-2025-32756 - A critical stack-based buffer overflow vulnerability affecting multiple Fortinet products.
88 16 days ago CVE-2025-24813-PoC Apache Tomcat 远程代码执行漏洞批量检测脚本(CVE-2025-24813)
81 5 hours ago CVE-2025-49113
73 2 days ago CVE-2025-30406 CVE-2025-30406 ViewState Exploit PoC
69 6 days ago CVE-2025-22457 PoC for CVE-2025-22457
72 5 hours ago CVE-2025-49113-exploit Proof of Concept demonstrating Remote Code Execution through insecure deserialization in Roundcube (CVE-2025-49113).
88 17 days ago watchTowr-vs-FortiWeb-CVE-2025-25257
45 75 days ago CVE-2025-0282 PoC for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways
59 11 days ago CVE-2025-25257 FortiWeb CVE-2025-25257 exploit

2024

Latest 20 of 603 Repositories

Stars Updated Name Description
2391 9 days ago CVE-2024-1086 Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
677 11 days ago CVE-2024-38063 poc for CVE-2024-38063 (RCE in tcpip.sys)
483 3 days ago cve-2024-6387-poc a signal handler race condition in OpenSSH's server (sshd)
500 31 days ago CVE-2024-49113 LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
496 3 days ago CVE-2024-6387_Check CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH
381 14 hours ago cve-2024-6387-poc 32-bit PoC for CVE-2024-6387 — mirror of the original 7etsuo/cve-2024-6387-poc
215 71 days ago CVE-2024-38077 RDL的堆溢出导致的RCE
311 20 days ago CVE-2024-0044 CVE-2024-0044: a "run-as any app" high-severity vulnerability affecting Android versions 12 and 13
294 7 days ago CVE-2024-4577 PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
300 5 days ago CVE-2024-21338 Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
736 23 days ago CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability Microsoft-Outlook-Remote-Code-Execution-Vulnerability
237 21 days ago CVE_2024_30078_POC_WIFI basic concept for the latest windows wifi driver CVE
8 71 days ago CVE-2024-38077-POC
197 71 days ago CVE-2024-23897 CVE-2024-23897
173 4 days ago CVE-2024-25600 Unauthenticated Remote Code Execution Bricks <= 1.9.6
146 19 hours ago CVE-2024-21413 CVE-2024-21413 PoC for THM Lab
139 10 hours ago CVE-2024-6387 Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (CVE-2024-6387)
154 110 days ago CVE-2024-21413 Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC
139 45 days ago cve-2024-20017 exploits for CVE-2024-20017
83 14 days ago CVE-2024-40725-CVE-2024-40898 CVE-2024-40725 and CVE-2024-40898, affecting Apache HTTP Server versions 2.4.0 through 2.4.61. These flaws pose significant risks to web servers worldwide, potentially leading to source code disclosure and server-side request forgery (SSRF) attacks.

2023

Latest 20 of 496 Repositories

Stars Updated Name Description
788 2 days ago CVE-2023-38831-winrar-exploit CVE-2023-38831 winrar exploit generator
498 2 days ago Windows_LPE_AFD_CVE-2023-21768 LPE exploit for CVE-2023-21768
372 19 days ago CVE-2023-32233 CVE-2023-32233: Linux内核中的安全漏洞
406 9 hours ago CVE-2023-0386 CVE-2023-0386在ubuntu22.04上的提权
97 12 days ago CVE-2023-21839 Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)
388 77 days ago CVE-2023-4911 PoC for CVE-2023-4911
274 23 days ago CVE-2023-21608 Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
317 22 days ago CVE-2023-4863
240 20 days ago CVE-2023-44487 Basic vulnerability scanning to see if web servers may be vulnerable to CVE-2023-44487
166 60 days ago CVE-2023-36745
348 22 days ago CVE-2023-23397-POC-Powershell
232 10 days ago CVE-2023-20887 VMWare vRealize Network Insight Pre-Authenticated RCE (CVE-2023-20887)
227 26 days ago CVE-2023-3519 RCE exploit for CVE-2023-3519
240 16 days ago CVE-2023-7028 This repository presents a proof-of-concept of CVE-2023-7028
180 54 days ago CVE-2023-28252
239 12 days ago Weblogic-CVE-2023-21839
206 8 days ago CVE-2023-46747-RCE exploit for f5-big-ip RCE cve-2023-46747
129 3 days ago CVE-2023-2640-CVE-2023-32629 GameOver(lay) Ubuntu Privilege Escalation
234 9 days ago CVE-2023-29357 Microsoft SharePoint Server Elevation of Privilege Vulnerability
170 1 day ago CVE-2023-25157 CVE-2023-25157 - GeoServer SQL Injection - PoC

2022

Latest 20 of 374 Repositories

Stars Updated Name Description
575 2 days ago CVE-2022-23222 CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation
354 14 days ago CVE-2022-40684 A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
388 40 days ago CVE-2022-39197 CobaltStrike <= 4.7.1 RCE
411 11 days ago CVE-2022-33679 One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html
486 18 days ago CVE-2022-2588 exploit for CVE-2022-2588
341 9 days ago CVE-2022-21894 baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability
277 107 days ago cve-2022-27255
267 42 days ago CVE-2022-39952 POC for CVE-2022-39952
434 1 day ago CVE-2022-38694_unlock_bootloader This is a one-time signature verification bypass. For persistent signature verification bypass, check https://github.com/TomKing062/CVE-2022-38691_38692
219 156 days ago CVE-2022-34918 CVE-2022-34918 netfilter nf_tables 本地提权 POC
224 10 hours ago CVE-2022-30075 Tp-Link Archer AX50 Authenticated RCE (CVE-2022-30075)
318 16 days ago CVE-2022-39197-patch CVE-2022-39197 漏洞补丁. CVE-2022-39197 Vulnerability Patch.
342 30 days ago CVE-2022-26134-Godzilla-MEMSHELL
223 16 days ago CVE-2022-2992 Authenticated Remote Command Execution in Gitlab via GitHub import
173 37 days ago CVE-2022-32250-exploit
154 148 days ago CVE-2022-22972
169 101 days ago CVE-2022-3602
159 71 days ago PoC-CVE-2022-30190 POC CVE-2022-30190 : CVE 0-day MS Offic RCE aka msdt follina
321 1 day ago CVE-2022-37706-LPE-exploit A reliable exploit + write-up to elevate privileges to root. (Tested on Ubuntu 22.04)
87 396 days ago CVE-2022-40684 PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)

2021

Latest 20 of 209 Repositories

Stars Updated Name Description
988 21 hours ago CVE-2021-3156
771 9 days ago CVE-2021-3156 Sudo Baron Samedit Exploit
497 21 days ago CVE-2021-21972 CVE-2021-21972 Exploit
831 7 days ago CVE-2021-31166 Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
429 14 days ago CVE-2021-3493 Ubuntu OverlayFS Local Privesc
437 45 days ago CVE-2021-3156 PoC for CVE-2021-3156 (sudo heap overflow)
264 17 days ago CVE-2021-21972 Proof of Concept Exploit for vCenter CVE-2021-21972
154 14 days ago CVE-2021-3129 Laravel <= v8.4.2 debug mode: Remote code execution (CVE-2021-3129)
233 35 days ago CVE-2021-24086 Proof of concept for CVE-2021-24086, a NULL dereference in tcpip.sys triggered remotely.
154 2 days ago CVE-2021-3156 Root shell PoC for CVE-2021-3156
237 178 days ago CVE-2021-21551 Exploit to SYSTEM for CVE-2021-21551
184 21 days ago CVE-2021-21974 POC for CVE-2021-21974 VMWare ESXi RCE Exploit
130 16 days ago CVE-2021-3129 Laravel debug rce
226 27 days ago CVE-2021-28476 PoC for CVE-2021-28476 a guest-to-host "Hyper-V Remote Code Execution Vulnerability" in vmswitch.sys.
226 141 days ago cve-2021-3449 CVE-2021-3449 OpenSSL denial-of-service exploit 👨🏻‍💻
101 113 days ago CVE-2021-26855
111 396 days ago CVE-2021-3156 CVE-2021-3156
204 97 days ago CVE-2021-3156-plus CVE-2021-3156非交互式执行命令
182 283 days ago Gitlab-CVE-2021-22205
215 61 days ago CVE-2021-21985_PoC
Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme MIT 248 MiB
Languages
Python 97.6%
HTML 2.4%